3 matches found
PT-2026-7422
Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.6 and earlier Description An out-of-bounds write issue exists in Substance3D - Stager. Successful exploitation of this issue could lead to arbitrary code execution with the privileges of the current user. User...
SUSE CVE-2025-27516
Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the...
PT-2023-9543 · Pandoc +1 · Pandoc +1
Name of the Vulnerable Software and Affected Versions: Pandoc versions prior to 3.1.6 Description: The issue is related to insufficient input validation in the Pandoc library, which can be exploited to create or overwrite arbitrary files in the system. This can be achieved by using the...